Download to read offline
Uploaded byPriyanka Aash
Toward distributed and virtualized enterprise security
The document discusses the need for distributed and virtualized enterprise security. It covers recent public enterprise hacks and outlines the flaws with traditional enterprise perimeter security models. The presentation advocates for a micro-segmented architecture with isolated security zones and policy-based enforcement to replace the traditional untenable perimeter approach.
More Related Content
Similar to Toward distributed and virtualized enterprise security
![5G Explained! A High Level Overview [Introduction]](https://cdn.slidesharecdn.com/ss_thumbnails/5gexplainedahighleveloverview-260119165306-cc137a3e-thumbnail.jpg?width=640&height=640&fit=bounds)
Toward distributed and virtualized enterprise security
- 1. #RSAC Dr. Edward G.Amoroso Toward Distributed and Virtualized Enterprise Security STR-T11 CEO TAG Cyber Stevens Institute of Technology, M&T Bank, Applied Physics Lab/JHU, New York University @hashtag_cyber eamoroso@tag-cyber.com
- 2.
- 3. #RSAC How Many Dartsto Fill the Bucket?
- 4. #RSAC How Many Dartsto Fill the Bucket?
- 5. #RSAC Which Method Protectsthe Cookies Better?
- 6.
- 7.
- 8.
- 9. #RSAC Email Product Marketin g HR Records Sales Corporat e CFO Outsourc e IT Systems Dev/Ops Info/Data Trusted Internal Enterprise Access TrustedInternal Lateral Traversal Disallow External Access
- 10. #RSAC Email Product Marketin g HR Records Sales Corporat e CFO Outsourc e IT Systems Dev/Ops Info/Data Partner Access Gateway Web Gateway Remote Access Gateway OutsourceAccess Gateway Email Gateway Unknown Gateway Unknown Gateway Unknown Gateway
- 11. #RSAC Email Marketin g Web Gateway Mistake 1: Emailaccepted from anyone with no regard for controls such as DMARCEmail Gateway Records Mistake 2: Someone from Marketing clicks on a Phish Mistake 3: Easy lateral traversal across the enterprise LAN.Mistake 4: Web egress allowed to uncategorized Internet site Advanced Persistent Threat (APT)
- 12.
- 13. #RSAC Internal Asset B Internal Asset D Internal AssetC Internal Asset A
- 14. #RSAC Internal Asset A Internal Asset D Internal AssetB Internal Asset C
- 15. #RSAC Internal Asset A Internal Asset D Outsourcin g Internal AssetB Outsourcing Access Gateway
- 16. #RSAC Internal Asset A Internal Asset D Internal AssetB Outsourcing Access Gateway Outsourcin g Cloud/vDC
- 17. #RSAC Internal Asset A Internal Asset D Internal AssetB Outsourcin g Virtual Micro-Segment Policy Enforcement Cloud/vDC
- 18.
- 19.
- 20.
- 21.
- 22.
- 23.
- 24.
- 25.
- 26.
- 27.
- 28. #RSAC Asset A Asset C AssetD Asset B C&C
- 29. #RSAC Asset A Asset C AssetD Asset B C&C
- 30.
- 31.
- 32.
- 33.
- 34.
- 35.
- 36. #RSAC Distributed Micro-Segmented EnterpriseArchitecture Logical Interaction Logical Interaction Isolated Micro-Segments
- 37. #RSAC Warning: Global Perimetersare Not Secure Enterprise LAN Enterprise LAN Attack Surface Perimeter Attack Surface Attack Surface
- 38. #RSAC Isolating a Serverfrom a Perimeter Makes it More Secure Enterprise LAN Enterprise LAN Attack Surface Perimeter Attack Surface Attack SurfaceIsolated Server
- 39. #RSAC Global Department ofState Network
- 40. #RSAC Global Department ofState Perimeter is Not Secure
- 41. #RSAC Bureaucratic Clinton Email Server GlobalDepartment of State Perimeter is Not Secure
- 42. #RSAC Isolating the ClintonEmail Server Made it More Secure Isolated Clinton Email Server
- 43. #RSAC Applying Enterprise CyberSecurity to Politics
- 44. #RSAC https://www.tag-cyber.com/ @hashtag_cyber Apply What You’veLearned: Download the PDFs